We safe our site use this feature. We know that all most 70 percent site develop in WordPress cms because less cost, more feature and user friendly. Site security play very important role.
These are basic step fallow use move one more step from hackers :
Open your .htaccess file and write some code stuff like that
<Files wp-login.php> order deny,allow Deny from all # allow access from my IP address allow from 192.168.88.98 // You can your your ip address </Files>